TY - RPRT TI - Guide for applying the risk management framework to federal information systems : a security life cycle approach PY - 2014 PB - National Institute of Standards and Technology SN - NIST SP 800-37r1 DO - 10.6028/NIST.SP.800-37r1 ER -